Hack attempt?

Login / Search

I am getting quite a few of these. Don't know if it is anything to be concerned about. But must be the normal china/russia hackers looking for a way in... I dunno.

A potential hacking attempt has been detected. Please do not be alarmed: approximately half of the suspected attempts are triggered innocently (the software intentionally has a paranoid security model, to give you very high security). Real hacking attempts are almost always caused by 'bots' (computer programs) that automatically crawl the internet looking for websites which may contain vulnerabilities, and then reporting any found vulnerabilities to their 'master' for future exploitation (usually, to assist in spam relaying). If this was a real hack attempt, it has failed - you might want to try and analyse the logged details (in case it gives clues to a real and persistent offender). More information on security is given in the software documentation.

They try to get into your server with this command 'GET" . A good provider will have security this command. Mostely the hacker use the "LAME HACK" for this. Look down under the warning. If needed ask your provider if the could secure the "GET" command.

If you are on a dedicated server the provider can secure the GET command, to a share server its on the provider if they want to give this servide to her cliënts. So ask your hosting provider if they can secure this.

I've just been banning the IPs as I catch them. Honestly, I'm much more concerned by the content scrapers I am dealing with. I had two of them hit the site yesterday at the same time and spike resource CPU. And this after I have banned the former Soviet Bloc countries and Asia except for Japan. I still have some IPs slipping through my blocklist but their going to have to start hitting from Africa or SA which I have not yet blocked. SA would be a particularly tricky one since I want traffic from many of those countries.